Yina Arenas discusses how enterprises can use Azure AI Foundry to implement a secure and trustworthy AI agent blueprint, addressing identity, governance, and real-time security controls for agentic AI in production environments.

Agent Factory: Blueprint for Safe and Secure Enterprise AI Agents Using Azure AI Foundry

Author: Yina Arenas
Source: Microsoft Azure Blog

Overview

Azure AI Foundry delivers a comprehensive blueprint for enterprises to create safe and secure AI agents. By combining security, safety, and governance in a layered process, Foundry helps organizations embed trust into every stage of AI agent development—from proof of concept to production deployment.

Key Areas of Trust

Identity Management: Every agent receives a unique Entra Agent ID, providing full lifecycle visibility and reducing the risk of untracked “shadow agents.”
Data Protection by Design: Sensitive information is classified and governed with built-in safeguards, honoring Microsoft Purview sensitivity labels and DLP (Data Loss Prevention) policies across agent operations.
Built-In Security Controls: Harm and risk filters, prompt injection classifiers, groundedness checks, and protected material detection are implemented as primary defense mechanisms.
Continuous Risk Evaluation: Automated safety evaluations and adversarial testing with tools like the Red Teaming Agent and PyRIT probe agents for vulnerabilities both pre- and post-deployment.
Enterprise Monitoring: Telemetry streams directly into Microsoft Defender XDR and existing compliance/security workflows, allowing for real-time response and oversight.

Azure AI Foundry Capabilities

Entra Agent ID: Full audit trail and ownership tracking for every agent.
Agent Controls: Cross-prompt injection scanning (including prompt documents, tool responses, and external triggers), misalignment and high-risk action prevention, and advanced risk/harm filtering.
Lifecycle Evaluations: Harm/risk checks, groundedness scoring, and protected material scans, plus adversarial testing at scale.
Custom Data Control: Enterprise integration with existing Azure resources for secure storage and processing.
Network Isolation: Supports private network isolation through custom virtual networks and subnet delegation.
Microsoft Purview Integration: Sensitivity labeling/retention policies flow through agents to output; frameworks such as the EU AI Act and NIST AI RMF are supported for compliance tracking.
Microsoft Defender Integration: Automated surfacing of security alerts, incident telemetry, and risk evaluations, enabling holistic response via the Defender XDR platform.
Governance Collaborators: Credo AI and Saidot partnerships allow mapping of results to regulatory frameworks and responsible AI practices.

Blueprint in Action

Start with identity. Assign Entra Agent IDs for agent discovery and ownership.
Integrated controls. Leverage prompt shields, risk filters, and threat mitigations.
Continuous evaluation. Run safety/risk checks and adversarial exercises throughout the agent lifecycle.
Protect sensitive data. Apply Purview/DLP labels and enforce data boundaries by design.
Monitor and respond. Stream real-time metrics into Defender XDR and leverage Foundry’s observability tools.
Regulatory mapping. Use governance partners to align with legal and ethical frameworks.

Example Use Cases

EY: Utilizes Foundry for model evaluations comparing quality, safety, and cost at scale.
Accenture: Tests Red Teaming Agent to simulate attacks and validate agent resilience before production roll-out.

Further Learning and Resources

For technical best practices, see the complete Agent Factory blog series covering use cases, agent development, observability, and integration patterns.

This post appeared first on “The Azure Blog”. Read the entire article here